Mark Gonzales

Information Security Manager

Talent

Colorado City, PuebloMember since September 18, 2025

Hire this person

Send a job offer directly to this candidate

About

I am an experienced cybersecurity and information systems professional with over 20 years of leadership in security operations, risk management, and IT infrastructure. Currently serving as Information Security Manager at Colorado State University, I lead systemwide compliance, cybersecurity awareness programs, and incident response planning, while also teaching cybersecurity and IT management as an adjunct professor. My background includes extensive experience managing data centers, emergency communications, and business continuity planning for Pueblo County, as well as collaborating with state, local, and federal partners.

I hold advanced degrees, multiple industry certifications, and remain deeply engaged in building resilient systems and communities through leadership in the Pueblo Critical Systems & Infrastructure group and active involvement in national cybersecurity organizations.

Experience

Mark D. Gonzales – Bio

Degrees: MS Information System Security; BS Computer Information Systems

Certifications: GRC, CISM, CCFE, MCSA, MCP, ITIL Foundations, Dale Carnegie Leadership & Public Speaking

Training: Homeland Security Exercise & Evaluation Program (HSEEP); National Incident Management System (NIMS)

Current Roles

Information Security Manager, Colorado State University (CSU)
- Co-leads CSU’s systemwide CMMC compliance assessments & tracking.
- Organizes CSU’s AI Prompt-a-thon and serves on the System AI Design Team.
- Spearheads the CSU Systemwide Cybersecurity Awareness Program.
- Leads modernization of 40+ legacy servers and 500+ desktops.
- Oversees Business Continuity Planning, PCI DSS audits, and incident response exercises.
- Provides leadership on cybersecurity strategy, risk management, and compliance.
Adjunct Professor, CSU-Pueblo Hasan School of Business (2015–Present)
- Teaches Computer Forensics, Cybersecurity, and IT Management courses.
- Delivers NSA-CAE aligned cybersecurity seminars and training.

Past Experience

Pueblo County Sheriff’s Office – Emergency Services Center
- Served over 20 years as CSEPP IT Manager, Hazard Analyst, and IT Project Manager.
- Managed advanced data centers, fiber-optic MAN/WAN, server systems, emergency alert systems (EAS/IPAWS), physical security, and mobile command technology.
- Co-chaired the National Automated Integration Process Team (AIPT) for 10+ years.
- IT Co-Director for the national CSEPP Critical Systems Infrastructure (CSI) Exercise development team.

Community Leadership

Founder and Chair of the Pueblo Critical Systems & Infrastructure (CSI) group, spanning 8 Southern Colorado counties, covering K-12, higher ed, utilities, healthcare, and government partners.
Active member of ISACA, ISSA (Colorado Springs), MS-ISAC, Colorado Whole of State Cybersecurity, CIAC, and the Colorado Cybersecurity Friendtorship teams.

Education

Education & Credentials

M.S. Information System Security – Advanced training in cybersecurity strategy, governance, and risk management.

B.S. Computer Information Systems – Strong foundation in systems administration, programming, and IT infrastructure.

Specialized Training: Homeland Security Exercise & Evaluation Program (HSEEP); National Incident Management System (NIMS).

Certifications: Governance, Risk & Compliance (GRC); Certified Information Security Manager (CISM); Certified Computer Forensics Examiner (CCFE); Microsoft Certified Solutions Associate (MCSA); Microsoft Certified Professional (MCP); ITIL Foundations; Dale Carnegie Leadership & Public Speaking.